Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/_re_kaE2r7meoN8Ob3-KtQTSKkI.roa
File: _re_kaE2r7meoN8Ob3-KtQTSKkI.roa (raw, json)
Hash identifier: OG9+KEFxhV6c9cdr1dK2dFC+s9sIPR1D2/pRQU95bZc=
Subject key identifier: FE:B7:BF:91:A1:36:AF:B9:9E:A0:DF:0E:6F:7F:8A:B5:04:D2:2A:42
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 117A
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/_re_kaE2r7meoN8Ob3-KtQTSKkI.roa
Signing time: Fri 01 Sep 2023 04:46:43 +0000
ROA not before: Fri 01 Sep 2023 04:46:43 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18180
IP address blocks: 2001:dc1::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4474 (0x117a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 1 04:46:43 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=FEB7BF91A136AFB99EA0DF0E6F7F8AB504D22A42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:63:79:30:80:82:20:13:29:fe:eb:5d:f0:69:
ae:31:e4:d3:31:c5:d2:14:c3:71:96:6d:da:4d:fd:
76:0b:e8:19:33:f3:94:24:3d:30:e2:63:dd:87:a5:
55:e7:d1:20:a2:4b:b2:8c:a1:9d:da:52:8a:e6:04:
7e:17:e0:1a:8a:ae:25:0b:00:2a:f7:08:6c:f1:dc:
60:b3:74:5e:29:1a:7b:82:73:c4:67:58:4b:03:4a:
89:09:9f:65:d1:3d:8b:a9:49:95:26:c2:cd:86:95:
cc:75:4d:86:c4:74:37:5e:14:15:ff:76:ff:89:ff:
62:7f:e4:1c:cf:96:09:d7:19:44:ff:1e:c3:30:f0:
04:07:6c:1e:90:b1:f0:92:c0:31:fe:c6:50:ad:2f:
95:c0:9c:69:3a:fc:c4:95:e2:90:0e:69:7b:85:a3:
9f:d3:13:de:9f:cb:0b:fe:cb:20:7f:71:3b:60:57:
1c:7d:35:12:37:73:c7:bd:b2:24:89:7a:76:04:ee:
38:38:82:fa:b9:47:7c:2b:01:f6:0b:99:54:c2:0c:
5e:9b:8f:88:9a:34:28:6b:96:e4:15:f6:d6:e9:9b:
67:52:af:d7:10:2b:d9:82:0a:69:12:83:02:fe:90:
02:eb:bf:ca:8f:49:3c:ec:a6:5a:55:8e:b8:cf:f7:
7a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:B7:BF:91:A1:36:AF:B9:9E:A0:DF:0E:6F:7F:8A:B5:04:D2:2A:42
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/_re_kaE2r7meoN8Ob3-KtQTSKkI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:dc1::/32
Signature Algorithm: sha256WithRSAEncryption
44:da:3a:8a:ee:a5:08:57:2d:29:9a:18:b4:5d:15:9a:f9:7b:
69:fd:05:82:4e:50:f3:75:40:57:d3:aa:4b:76:d4:08:ef:84:
a7:79:1d:f8:60:84:bf:80:0a:e0:12:eb:ae:0b:e3:a3:d9:73:
3b:fa:7d:89:dd:d8:67:5f:a1:de:a3:a7:0f:eb:32:d0:cb:6a:
92:fc:6b:03:2d:ac:77:85:8a:57:a2:f5:18:6e:ca:d1:9e:4c:
5f:2b:8c:af:72:5f:6d:13:c6:d7:b5:80:05:33:a5:36:b2:a2:
2d:9e:7e:ab:62:0f:aa:39:b9:27:35:51:bd:fc:b2:7b:0c:90:
ce:9c:3a:36:8a:fc:a0:50:8a:8f:eb:2e:d3:e3:99:a5:01:9e:
31:61:74:b8:d7:78:91:5e:10:1a:d3:d3:18:ec:fb:8c:9d:91:
15:5c:42:de:05:ca:66:cf:a2:1f:68:b7:00:6b:ff:f2:1e:09:
b5:dd:1a:86:31:8c:1c:e4:22:2d:fd:e1:31:75:7c:5a:1f:65:
be:81:21:e2:9f:85:e4:1c:98:50:bc:2f:35:f6:7f:47:9f:2a:
ea:18:2d:cd:60:6c:f2:ef:c9:3a:c8:97:bb:e1:1a:72:02:37:
e4:04:ba:40:1a:1b:ff:f9:99:a3:29:4a:0c:8a:c3:82:73:8e:
6e:60:fa:53
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICEXowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMzA5MDEw
NDQ2NDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZFQjdCRjkxQTEzNkFG
Qjk5RUEwREYwRTZGN0Y4QUI1MDREMjJBNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDbY3kwgIIgEyn+613waa4x5NMxxdIUw3GWbdpN/XYL6Bkz85Qk
PTDiY92HpVXn0SCiS7KMoZ3aUormBH4X4BqKriULACr3CGzx3GCzdF4pGnuCc8Rn
WEsDSokJn2XRPYupSZUmws2Glcx1TYbEdDdeFBX/dv+J/2J/5BzPlgnXGUT/HsMw
8AQHbB6QsfCSwDH+xlCtL5XAnGk6/MSV4pAOaXuFo5/TE96fywv+yyB/cTtgVxx9
NRI3c8e9siSJenYE7jg4gvq5R3wrAfYLmVTCDF6bj4iaNChrluQV9tbpm2dSr9cQ
K9mCCmkSgwL+kALrv8qPSTzsplpVjrjP93ptAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQU/re/kaE2r7meoN8Ob3+KtQTSKkIwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9fcmVfa2FFMnI3bWVvTjhPYjMt
S3RRVFNLa0kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAEN
wTANBgkqhkiG9w0BAQsFAAOCAQEARNo6iu6lCFctKZoYtF0Vmvl7af0Fgk5Q83VA
V9OqS3bUCO+Ep3kd+GCEv4AK4BLrrgvjo9lzO/p9id3YZ1+h3qOnD+sy0Mtqkvxr
Ay2sd4WKV6L1GG7K0Z5MXyuMr3JfbRPG17WABTOlNrKiLZ5+q2IPqjm5JzVRvfyy
ewyQzpw6Nor8oFCKj+su0+OZpQGeMWF0uNd4kV4QGtPTGOz7jJ2RFVxC3gXKZs+i
H2i3AGv/8h4Jtd0ahjGMHOQiLf3hMXV8Wh9lvoEh4p+F5ByYULwvNfZ/R58q6hgt
zWBs8u/JOsiXu+EacgI35AS6QBob//mZoylKDIrDgnOObmD6Uw==
-----END CERTIFICATE-----
Generated at Sat May 10 00:29:22 2025 by rpki-client